IN THE CLAIMS 

1 . (Currently Amended) A system for distributing authentication information to users of remote 
devices, comprising: 

an authentication information store configured to store authentication information 
for a plurality of users; 

an authentication system configured to receive a request for authentication 
information for one of the plurality of users from a remote device; 

wherein the request comprises identity information for use in determining whether 
the request is from one of the plurality of users, 

wherein the authentication system retrieves based on the identity information the 
authentication information for the one of the plurality of users from the authentication 
information store; 

wherein the retrieved authentication information is provided to the remote device 
for use in authenticating a user that is request i ng remote access to a computer network . 

2. (Previously Presented) The system of claim 1, wherein the authentication information is used 
in a two -factor authentication scheme. 

3. (Previously Presented) The system of claim 1, wherein the authentication information store 
comprises a seed store configured to store a plurality of seeds; 

wherein the authentication system is configured to receive a seed request from the 
remote device, to retrieve the one of the plurality of seeds from the seed store, to calculate an 
access code using the retrieved seed, to determine whether the calculated access code matches 
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the received access code, and to return the retrieved seed to the remote device where the 
calculated access code matches the received access code. 

4. (Original) The system of claim 1, wherein the request comprises a Hypertext Transfer 
Protocol (HTTP) connection request. 

5. (Previously Presented) The system of claim 1, wherein the request comprises a network 
password and a digital signature, wherein the network password and digital signature are verified 
by the authentication system before the authentication information is provided to the remote 
device. 

6. (Previously Presented) The system of claim 1, wherein the identity information comprises 
user information and account information. 

7. (Previously Presented) The system of claim 6, wherein the identity information identifies a 
particular user and corresponding authentication information being requested, and is used by the 
authentication system to authenticate the user requesting the authentication information. 

8. (Previously Presented) The system of claim 1, wherein the identity information in the request 
is used by the remote device for two -factor authentication. 

9. (Previously Presented) The system of claim 8, wherein the identity information comprises a 
network password entered by the user of the remote device and a digital signature generated 
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based on a transformation of at least a portion of the information in the request, a signature key, 
and a signature algorithm. 

10. (Original) The system of claim 1, wherein the authentication system does not provide the 
authentication information to the remote device because a match was not found in the 
authentication information store based upon the identity information. 

11. (Currently Amended) The system of claim 1, wherein the authentication information 
comprises a password required for remote access to resources in the a computer network, 
wherein the password is not known to a user of the remote device but is required e my for access 
to the resources in the computer network. 

12. (Currently Amended) The system of claim 1, wherein the authentication information 
comprises an access code required for remote access to resources in the a-computer network, 
wherein the access code is not known to a user of the remote device but is required only for 
access to the resources in the computer network. 

13. (Previously Presented) The system of claim 1, wherein the retrieved authentication 
information comprises an expiring password which is valid for a short period of time. 

14. (Original) The system of claim 13, wherein the short period of time is on the order of 
minutes. 
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15. (Previously Presented) The system of claim 1, wherein the retrieved authentication 
information comprises an expiring access code which is valid for a short period of time. 

16. (Previously Presented) The system of claim 1, wherein the retrieved authentication 
information comprises a non-expiring password and is stored in a protected data store on the 
remote device. 

17. (Previously Presented) The system of claim 1, wherein the retrieved authentication 
information comprises a seed from which access codes are to be generated by the remote device, 
wherein the seed is stored in a protected data store on the remote device. 

18. (Previously Presented) The system of claim 1, wherein the remote device uses the retrieved 
authentication information to gain access to a corporate local area network (LAN). 

19. (Original) The system of claim 18, wherein two-factor authentication is used in the LAN to 
authenticate a user requesting remote access to the LAN, wherein the retrieved authentication 
information is used in performing two-factor authentication in order to gain access to the LAN. 

20. (Previously Presented) The system of claim 19, wherein the retrieved authentication 
information comprises a seed which the remote device's two-factor code generator uses to 
produce an access code, wherein the access code is also based upon a value provided by the 
remote device's clock, wherein the access code is used by the remote device to gain access to the 
LAN; 
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wherein the seed is used by the authentication system to also generate an access 
code for use in a comparison with the access code generated by the remote device; 

wherein access to the LAN is either granted or denied based upon the comparison. 

21. (Original) The system of claim 20, wherein the remote device only generates the access 
code when access to the LAN is requested by the user of the remote device. 

22. (Previously Presented) The system of claim 20, wherein the authentication information store 
comprises an index by user name that indicates users authorized for remote access to the LAN. 

23. (Previously Presented) The system of claim 22, wherein the authentication information store 
stores user seed values from which access codes are to be generated . 

24. (Original) The system of claim 1, wherein the remote device is a wireless mobile 
communication device. 

25. (Original) The system of claim 24, wherein the remote device stores the authentication 
information in a data store. 

26. (Original) The system of claim 25, wherein the data store is implemented in a smart card. 

27. (Original) The system of claim 25, wherein the data store is implemented in a Universal 
Serial Bus (USB) token. 
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28. (Original) The system of claim 1, wherein the remote device is a desktop computer. 

29. (Previously Presented) The system of claim 1, wherein the remote device communicates 
with the authentication system over a communication system, wherein the communication 
system comprises a wide area network (WAN) and a wireless network gateway. 

30. (Currently Amended) A method of distributing authentication information for remotely 
accessing computer resources, comprising: 

receiving a request for the authentication information from a remote device, the 
request comprising identity information of a user of the remote device; 

wherein the authentication information is stored in an authentication data store; 

authenticating the user based on the identity information in the request; and 

returning the authentication information to the remote device to authenticate a 
user requesting remote access to so that the r e mote device may - a ccess - th e a_computer resources 
based upon the returned authentication information. 

3 1 . (Currently Amended) An apparatus for use in handling authentication information for users 
of remote devices, comprising: 

an authentication information store configured to store authentication information 
for a user of a remote device, the authentication information provided by a remote authentication 
system; 
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wherein a request for the authentication information from the remote device to the 
remote authentication system contains identity information; 

wherein the authentication information that is stored in a data store by the remote 
authentication system is provided to the remote device after the request is processed based upon 
the identity information contained in the request; 

a code generation system configured to retrieve the authentication information 
stored in the authentication information store; 

wherein access information is generated based upon the retrieved authentication 
information and is used to authenticate a user requesting remote access to in accessing a remote 
computer network. 

32, (Currently Amended) A method for obtaining authentication information for use in 
remotely accessing a computer network, the method comprising: 

providing a request from a user of a remote device to an authentication system for 
the authentication information that is stored in a data store by the authentication system; 

wherein the request comprises identity information for use by the authentication 
system to authenticate the user based on the identity information provided in the request; 

receiving by the remote device the authentication information from the 
authentication system; 

wherein the received authentication information is used to authenti cate a user 
requesting remote access to by the r e mot e devic e to access the computer network. 
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